Network technologies and trends:

VPN

1

March 30, 2017  5:19 AM

Cisco ASA VPN troubleshooting  – Decaps but No encaps

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ASA, bug, Cisco ASA, Cisco VPN, firewall, NAT, Palo Alto Networks, Policies, Proxy, Troubleshooting, tunnel, VPN

Recently we observed a strange issue while building a site to site VPN tunnel between a Cisco ASA [9.1( 5) ] and Palo Alto Next Generation firewall.(PAN-OS 7.0.9) It was observed always phase 1 part of tunnel established successfully with peer however phase 2 failed to come up. Always we were...

March 3, 2017  9:30 PM

What is an error “Subtype:Encrypt Result:Drop” in Cisco ASA Firewalls?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ACL, ASA, Cisco, Cisco ASA, DROP, firewall, Packet Tracer, Routers, Security, VPN, VPN Tunnel

After building a site to site VPN tunnel between Cisco ASA and any other firewall or router, often the tunnel is tested using the packet-tracer command in Cisco ASA firewall. While running a packet tracer when one sees an error "Subtype:Encrypt Result:Drop" as shown below

Phase:...


January 31, 2017  5:23 AM

Time to welcome CCIE Security Version 5 Written and Lab exam

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ASA, CCIE, Cisco, cloud, CUCM, Email, Firewalls, Private Cloud, Python, Routing, Switching, UCS, virtual, VPN, Windows 2008, Windows 7, Wireless

Starting today i.e. 31st Jan 2017 , CCCIE Security Version 5 exams both lab and written are available for all CCIE aspirers all over the globe in authorised centres. The written exam known as CCIE Security Written Exam (400-251) version 5.0 is a two-hour test with 90-110 questions. However  the...


January 29, 2017  7:10 AM

Cisco launches ISE 2.2 with a promise of more visibility and control

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
Cisco, Enterprise, Internet, Internet of Things, iot, ISE, NAC, Network, Rapid7, Routers, Security, visibility, VPN, Wireless

Since the introduction of Internet in early 90's to general public, no one ever imagined that Internet will grow so fast, and vast majority of organizations and consumers will be interconnected using the internet. It has expanded exponentially and still its is growing at its greatest speed. The...


September 9, 2016  10:44 AM

What is Cisco Firepower Threat Defense (FTD)?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
application, ASA, BGP, Cisco, Decryption, EIGRP, filtering, firewall, Integration, ISE, malware, Multicast, OSPF, RIP, Routing, Software, SSL, Static Routing, URL, VPN

Cisco Firepower Threat Defense (FTD) is a unified software image, which includes the Cisco ASA features and FirePOWER Services. This unified software is capable of offering the function of ASA and FirePOWER in one platform, both in terms of hardware and software features. This seems to be a good...


December 28, 2015  4:12 AM

How to configure Site-to-Site IPSec VPN on Cisco Routers? – Series 2

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ACL, Cisco, CRYPTO, IPsec, VPN

In my previous post we talked briefly about IPSec. We will be using the below topology for our set up. 0 Comments     RSS Feed     Email a friend


December 27, 2015  5:26 PM

How to configure Site-to-Site IPSec VPN on Cisco Routers? – Series 1

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ACL, Cisco, Cisco Routers, IPsec, IPsec VPN, Topology, VPN

IPSec is the protocol one can use to establish a Site-to-Site VPN , as it is widely used because its an open standard protocol which offers secure and encrypted communication over the public internet domain. IPSec works at Network later and only pass unicast traffic. I will brief you all about how...


November 21, 2015  8:27 AM

A review of CCDE Study Guide by Marwan Al-shawi

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
BGP, Cisco, Cisco certifications, Cisco Press, EIGRP, Network design, Networking, OSPF, Protocols, VPN

Since I received the "CCDE Study Guide" from Jamie Shoup till date, I simply couldn’t able resist reading such a wonder book from Marwan Al-shawi.  I believe it was...


October 8, 2015  6:11 PM

CCDE must read , Series 1 – Review for “Optimal Routing Design”

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
BGP, Cisco certifications, EIGRP, Network, Network design, OSPF, VPN

When it comes to CCDE preparations one should master many concepts, one should refer to plenty of  resources available in  form of books, articles, Cisco validated designs, Videos,RFCs etc.  For every journey there is a starting point, for CCDE I believe 


October 5, 2015  3:51 AM

Review for CCNA Security 210-260 Official Cert Guide

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
CCNA, CCNA Security, Cisco, Cisco Press, Email security, IPS, ISE, malware, Network security, Security threats, Social engineering, tacacs, VPN, Web security

I would like to thank my old time professional friend from Cisco Press


1

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: